Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A915D85E/73EF909C3BB511EBB4D1377DC4F9AE02/9A293F56522911ED9136DF2AC4F9AE02.roa
File: 9A293F56522911ED9136DF2AC4F9AE02.roa (raw, json)
Hash identifier: iwlFzLEjmlMmP9j9L9mu9Y0z5n4vqYWuYnBhTfJy20Q=
Subject key identifier: A4:BD:D9:1E:60:53:60:8D:94:38:06:DA:FC:24:98:22:72:47:CF:03
Certificate issuer: /CN=A915D85E/serialNumber=D458051F6DA952297475B484BDDD0FBBE3490E70
Certificate serial: 0559
Authority key identifier: D4:58:05:1F:6D:A9:52:29:74:75:B4:84:BD:DD:0F:BB:E3:49:0E:70
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FgFH22pUil0dbSEvd0Pu-NJDnA.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A915D85E/73EF909C3BB511EBB4D1377DC4F9AE02/9A293F56522911ED9136DF2AC4F9AE02.roa
Signing time: Fri 23 Dec 2022 00:40:55 +0000
ROA not before: Fri 23 Dec 2022 00:40:55 +0000
ROA not after: Fri 01 Mar 2024 00:00:00 +0000
asID: 139683
IP address blocks: 103.159.171.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1369 (0x559)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A915D85E/serialNumber=D458051F6DA952297475B484BDDD0FBBE3490E70
Validity
Not Before: Dec 23 00:40:55 2022 GMT
Not After : Mar 1 00:00:00 2024 GMT
Subject: CN=63a4f917-f17d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:d1:6f:0e:85:8e:a7:9c:b7:40:c9:a9:84:76:
c0:08:84:62:40:2e:58:71:36:d3:fd:48:af:39:b4:
c8:ca:59:ff:0b:83:33:ba:28:a9:f6:4d:4b:38:37:
7e:36:e9:de:1d:20:46:38:e5:57:51:0f:b9:dc:fe:
20:4d:59:7d:5e:da:fb:46:9b:4e:38:ac:af:5d:56:
bc:04:7c:c2:af:cb:5e:62:96:3c:65:18:36:ce:75:
ea:7c:fc:ec:7d:38:ad:5e:cd:74:53:fa:66:45:89:
a8:6e:ff:09:51:56:22:ff:25:d3:39:8c:d5:49:bf:
a5:86:40:62:49:2c:4b:ca:87:d0:3b:b0:dc:ff:f2:
9b:6a:5b:7f:2b:a1:cd:8f:78:c6:ea:25:a3:f4:d0:
d8:83:08:06:80:02:2a:21:f8:cb:1f:d7:a3:83:6b:
3b:71:82:fa:50:08:0d:b0:bd:7b:24:45:c9:84:d9:
94:c2:e9:e1:a2:21:d3:53:18:16:e9:5c:15:48:36:
3f:00:63:e9:3c:16:75:0d:e1:23:8b:59:8c:10:0c:
60:4a:ee:74:43:a2:88:53:b1:0e:0c:2b:f5:dc:7d:
27:5a:56:52:97:2e:95:75:cc:e8:99:eb:7d:74:24:
09:d5:57:25:a8:7c:09:57:3d:0c:78:11:fb:dd:4f:
6b:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:BD:D9:1E:60:53:60:8D:94:38:06:DA:FC:24:98:22:72:47:CF:03
X509v3 Authority Key Identifier:
keyid:D4:58:05:1F:6D:A9:52:29:74:75:B4:84:BD:DD:0F:BB:E3:49:0E:70
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A915D85E/73EF909C3BB511EBB4D1377DC4F9AE02/1FgFH22pUil0dbSEvd0Pu-NJDnA.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1FgFH22pUil0dbSEvd0Pu-NJDnA.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A915D85E/73EF909C3BB511EBB4D1377DC4F9AE02/9A293F56522911ED9136DF2AC4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.159.171.0/24
Signature Algorithm: sha256WithRSAEncryption
7e:28:db:36:2b:81:a4:72:f8:ab:91:f5:4a:46:0a:b1:02:ca:
74:90:20:2e:69:65:d2:9b:25:cd:6f:dc:ae:6a:7f:19:61:ed:
86:3b:cb:41:75:07:aa:19:5e:39:ee:e3:6f:c3:ec:e4:25:40:
2a:9c:89:39:b7:ef:e2:2a:85:a9:ac:69:fc:1b:19:2c:97:31:
9e:18:cb:ec:81:2b:87:0b:11:e9:d8:b8:e8:7f:47:ad:90:71:
0b:37:fa:22:cb:3b:f8:71:98:34:a6:38:89:ce:1c:f9:93:73:
b5:a6:19:60:78:9d:e8:9e:b5:c5:44:ce:24:2d:14:99:8f:fa:
13:42:87:cc:f4:b8:59:15:11:a7:f2:7c:9f:4b:2a:ef:99:93:
43:8a:e0:1e:89:ca:2b:4a:7f:38:9d:63:39:33:e2:44:e6:c4:
f7:4e:0f:50:53:c4:44:95:fa:26:e7:63:9a:d6:bf:14:a9:52:
c3:e3:fb:4a:05:e8:e3:f2:a5:2e:81:10:3b:03:2c:1f:c0:dd:
7e:ac:df:37:df:65:2a:e8:88:ae:bc:85:f4:75:70:0e:e1:dc:
13:dc:d7:d6:00:11:b5:9d:6a:be:9f:31:85:72:c1:22:82:86:
24:a3:11:27:cf:8b:e1:d6:d2:fd:bc:97:81:c7:08:31:91:a7:
ac:c6:4a:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:05:08 2024 by rpki-client on console-ams.rpki-client.org